CVE-2025-30033: The affected setup component is vulnerable to DLL hijacking. This could allow an attacker to execute arbitrary code when a legitimate user installs an…

high8.5CVSS 4.0

AVLACLATNPRNUIPVCHVIHVAHSCNSINSANEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX

The affected setup component is vulnerable to DLL hijacking. This could allow an attacker to execute arbitrary code when a legitimate user installs an application that uses the affected setup component.

Affected

139 ranges· showing 25

Vendor	Product	Version range	Fixed in
siemens	automation_license_manager_v6.0	< *	*
siemens	automation_license_manager_v6.2	< V6.2 Upd3	V6.2 Upd3
siemens	cemat_v10.0	< *	*
siemens	cp_ptp_param_configuring_interface	< *	*
siemens	create_myconfig	< V6.9	V6.9
siemens	energy_support_library	< *	*
siemens	fm_configuration_package	< *	*
siemens	modular_pid_ctrl_tool	< *	*
siemens	multifieldbus_configuration_tool	< V1.5.5.0	V1.5.5.0
siemens	openpcs_7_v10.0	< *	*
siemens	openpcs_7_v9.1	< *	*
siemens	siemens_network_planner	< *	*
siemens	simatic_automation_tool	< *	*
siemens	simatic_automation_tool_sdk_windows	< *	*
siemens	simatic_batch_v10.0	< *	*
siemens	simatic_batch_v9.1	< *	*
siemens	simatic_control_function_library_v1.x	< *	*
siemens	simatic_control_function_library_v2.x	< *	*
siemens	simatic_control_function_library_v3.x	< V3.1.0.2	V3.1.0.2
siemens	simatic_control_function_library_v4.x	< V4.1	V4.1
siemens	simatic_d7-sys	< *	*
siemens	simatic_easie_core_package	< *	*
siemens	simatic_easie_document_skills	< *	*
siemens	simatic_easie_pcs_7_skill_package	< *	*
siemens	simatic_easie_workflow_skills	< *	*